CISSP Sybex Official Study Guide Chapter 10 Review Questions

Question 1

Which of the following is the most important aspect of security?

A. Physical security
B. Intrusion detection
C. Logical security
D. Awareness training

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 435). Wiley. Kindle Edition.

Answer 1

A. Physical security

Explanation:
A. Physical security is the most important aspect of overall security. Without physical security, none of the other aspects of security are sufficient.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Question 2

What method can be used to map out the needs of an organization for a new facility?

A. Log file audit
B. Critical path analysis
C. Risk analysis
D. Inventory

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 435). Wiley. Kindle Edition.

Answer 2

B. Critical path analysis

Explanation:
Critical path analysis can be used to map out the needs of an organization for a new facility. A critical path analysis is the process of identifying relationships between mission-critical applications, processes, and operations and all of the supporting elements.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Question 3

What infrastructure component is often located in the same position across multiple floors in order to provide a convenient means of linking floor-based networks together? \

A. Server room
B. Wiring closet
C. Datacenter
D. Media cabinets

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 435). Wiley. Kindle Edition.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 435). Wiley. Kindle Edition.

Answer 3

B. Wiring closet

Explanation:
A wiring closet is the infrastructure component often located in the same position across multiple floors in order to provide a convenient means of linking floor-based networks together.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Question 4

Which of the following is not a security-focused design element of a facility or site?

A. Separation of work and visitor areas
B. Restricted access to areas with higher value or importance
C. Confidential assets located in the heart or center of a facility
D. Equal access to all locations within a facility

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 435). Wiley. Kindle Edition.

Answer 4

D. Equal access to all locations within a facility

Explanation:
D. Equal access to all locations within a facility is not a security-focused design element. Each area containing assets or resources of different importance, value, and confidentiality should have a corresponding level of security restriction placed on it.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Question 5

Which of the following does not need to be true in order to maintain the most efficient and secure server room?

A. It must be human compatible.
B. It must include the use of nonwater fire suppressants.
C. The humidity must be kept between 40 and 60 percent.
D. The temperature must be kept between 60 and 75 degrees Fahrenheit.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 435). Wiley. Kindle Edition.

Answer 5

A. It must be human compatible.

Explanation:
A computer room does not need to be human compatible to be efficient and secure. Having a human-incompatible server room provides a greater level of protection against attacks.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Question 6

Which of the following is not a typical security measure implemented in relation to a media storage facility containing reusable removable media?

A. Employing a librarian or custodian
B. Using a check-in/check-out process
C. Hashing
D. Using sanitization tools on returned media

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 435). Wiley. Kindle Edition.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 435). Wiley. Kindle Edition.

Answer 6

C. Hashing

Explanation:
Hashing is not a typical security measure implemented in relation to a media storage facility containing reusable removable media.
Hashing is used when it is necessary to verify the integrity of a dataset, while data on reusable removable media should be removed and not retained. Usually the security features for a media storage facility include using a librarian or custodian, using a check-in/check-out process, and using sanitization tools on returned media.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Question 7

Which of the following is a double set of doors that is often protected by a guard and is used to contain a subject until their identity and authentication are verified?

A. Gate
B. Turnstile
C. Mantrap
D. Proximity detector

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 436). Wiley. Kindle Edition.

Answer 7

C. Mantrap

Explanation:
A mantrap is a double set of doors that is often protected by a guard and used to contain a subject until their identity and authentication is verified.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Question 8

What is the most common form of perimeter security devices or mechanisms?

A. Security guards
B. Fences
C. CCTV
D. Lighting

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 436). Wiley. Kindle Edition.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 436). Wiley. Kindle Edition.

Answer 8

D. Lighting

Explanation:
Lighting is the most common form of perimeter security device or mechanism. Your entire site should be clearly lit. This provides for easy identification of personnel and makes it easier to notice intrusions.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Question 9

Which of the following is not a disadvantage of using security guards?

A. Security guards are usually unaware of the scope of the operations within a facility.
B. Not all environments and facilities support security guards.
C. Not all security guards are themselves reliable.
D. Prescreening, bonding, and training do not guarantee effective and reliable security guards.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 436). Wiley. Kindle Edition.

Answer 9

A. Security guards are usually unaware of the scope of the operations within a facility.

Explanation:
Security guards are usually unaware of the scope of the operations within a facility, which supports confidentiality of those operations and thus helps reduce the possibility that a security guard will be involved in the disclosure of confidential information.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Question 10

What is the most common cause of a false positive for a water-based fire suppression system?

A. Water shortage
B. People
C. Ionization detectors
D. Placement of detectors in drop ceilings

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 436). Wiley. Kindle Edition.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 436). Wiley. Kindle Edition.

Answer 10

B. People

Explanation:
The most common cause of a false positive for a water-based system is human error. If you turn off the water source after a fire and forget to turn it back on, you’ll be in trouble for the future. Also, pulling an alarm when there is no fire will trigger damaging water release throughout the office.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Question 11

What is the most common and inexpensive form of physical access control device?

A, Lighting
B. Security guard
C. Key locks
D. Fences

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 436). Wiley. Kindle Edition.

Answer 11

C. Key locks

Explanation:
Key locks are the most common and inexpensive form of physical access control device. Lighting, security guards, and fences are all much more costly.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 965). Wiley. Kindle Edition.

Question 12

What type of motion detector senses changes in the electrical or magnetic field surrounding a monitored object?

A. Wave
B. Photoelectric
C. Heat
D. Capacitance

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 436). Wiley. Kindle Edition.

Answer 12

D. Capacitance

Explanation:
A capacitance motion detector senses changes in the electrical or magnetic field surrounding a monitored object.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 966). Wiley. Kindle Edition.

Question 13

Which of the following is not a typical type of alarm that can be triggered for physical security?

A. Preventive
B. Deterrent
C. Repellant
D. Notification

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 437). Wiley. Kindle Edition.

Answer 13

A. Preventive

Explanation:
There is no such thing as a preventive alarm. Alarms are always triggered in response to a detected intrusion or attack.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 966). Wiley. Kindle Edition.

Question 14

No matter what form of physical access control is used, a security guard or other monitoring system may be deployed to prevent all but which of the following?

A. Piggybacking
B. Espionage
C. Masquerading
D. Abuse

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 437). Wiley. Kindle Edition.

Answer 14

B. Espionage

Explanation:
No matter what form of physical access control is used, a security guard or other monitoring system must be deployed to prevent abuse, masquerading, and piggybacking. Espionage cannot be prevented by physical access controls.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 966). Wiley. Kindle Edition.

Question 15

What is the most important goal of all security solutions?

A. Prevention of disclosure
B. Maintaining integrity
C. Human safety
D. Sustaining availability

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 437). Wiley. Kindle Edition.

Answer 15

C. Human safety

Explanation:
Human safety is the most important goal of all security solutions.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 966). Wiley. Kindle Edition.

Question 16

What is the ideal humidity range for a computer room?

A. 20–40 percent
B. 40–60 percent
C. 60–75 percent
D. 80–95 percent

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 437). Wiley. Kindle Edition.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 437). Wiley. Kindle Edition.

Answer 16

B. 40–60 percent

Explanation:
The humidity in a computer room should ideally be from 40 to 60 percent.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 966). Wiley. Kindle Edition.

Question 17

Which of the following statements are not true in regards to static electricity?

A. Electrostatic discharge can damage most computing components.
B. Static charge accumulation is more prevalent when there is high humidity.
C. Static discharge from a person to a metal object can be over 1,000 volts.
D. Static electricity is not managed by the deployment of a UPS.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 437). Wiley. Kindle Edition.

Answer 17

B. Static charge accumulation is more prevalent when there is high humidity.

Explanation:
Static charge accumulation is more prevalent when there is low humidity. High humidity is the cause of condensation, not static charge accumulation.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 966). Wiley. Kindle Edition.

Question 18

A Type B fire extinguisher may use all except which of the following suppression mediums?

A. Water
B. CO2
C. Halon or an acceptable halon substitute
D. Soda acid

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 437). Wiley. Kindle Edition.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 437). Wiley. Kindle Edition.

Answer 18

A. Water

Explanation:
Water is never the suppression medium in Type B fire extinguishers because they are used on liquid fires.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 966). Wiley. Kindle Edition.

Question 19

What is the best type of water-based fire suppression system for a computer facility?

A. Wet pipe system
B. Dry pipe system
C. Preaction system
D. Deluge system

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 438). Wiley. Kindle Edition.

Answer 19

C. Preaction system

Explanation:
A preaction system is the best type of water-based fire suppression system for a computer facility.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 966). Wiley. Kindle Edition.

Question 20

Which of the following is typically not a culprit in causing damage to computer equipment in the event of a fire and a triggered suppression?

A. Heat
B. Suppression medium
C. Smoke
D. Light

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 438). Wiley. Kindle Edition.

Answer 20

D. Light

Explanation:
Light is usually not damaging to most computer equipment, but fire, smoke, and the suppression medium (typically water) are very destructive.

Chapple, Mike; Stewart, James Michael; Gibson, Darril. (ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide (p. 966). Wiley. Kindle Edition.